### Advantra User Authentication System – Notebook Brief

This notebook implements a simple **in-memory user authentication system** for Advantra Technology’s web application. The system is designed to manage users without a database, using Python dictionaries to store user information.

#### **Features Implemented**

1. **User Registration (`register`)**

   * Adds a new user with a **unique ID**, email, name, and password.
   * Validates email format, password strength (≥8 characters, at least one digit), and prevents duplicate emails.
   * Default role is `is_admin = False`.

2. **User Login (`login`)**

   * Checks if a user exists and verifies their password.
   * Returns a success or error message with the user ID if login succeeds.

3. **Remove User (`remove_user`)**

   * Deletes a user by their unique ID.
   * Returns success if removed or an error if the user does not exist.

#### **Bonus Features**

4. **List Users (`list_users`)**

   * Returns all users’ IDs, emails, and names.
   * Does **not expose passwords**.

5. **Update Password (`update_password`)**

   * Validates the old password.
   * Applies the same password strength rules.
   * Updates the password if valid.

#### **Data Structure**

Users are stored in a Python dictionary:

```python
users = {
    id: {
        "email": "example@address.com",
        "name": "John Doe",
        "password": "password",  # plaintext for now
        "is_admin": False
    }
}
```

#### **Key Notes**

* The system is **fully in-memory**, so data resets when the program stops.
* Passwords are stored in **plaintext** for simplicity but can be improved with hashing.
* Designed for **educational purposes**, to be used as Altschool Data Engineering Assignment Submission file.

In [16]:
import re

# In-memory user storage
users = {}
next_user_id = 1  # auto-increment ID

# Helper function to validate password
def is_strong_password(password):
    return len(password) >= 8 and any(char.isdigit() for char in password)

# Function 1: Registering a new user
def register(email: str, name: str, password: str) -> dict:
    global next_user_id
    
    # Validation checks on the email
    if '@' not in email:
        return {"status": "error", "message": "Invalid email address"}
    
    if not is_strong_password(password):
        return {"status": "error", "message": "Password must be at least 8 characters long and contain at least one digit"}
    
    if any(user["email"] == email for user in users.values()):
        return {"status": "error", "message": "User email already taken"}
    
    # Creating a new user
    user_id = next_user_id
    users[user_id] = {
        "email": email,
        "name": name,
        "password": password,  # plaintext for now
        "is_admin": False
    }
    next_user_id += 1
    
    return {"status": "success", "message": "User registered successfully", "user_id": user_id}

In [17]:
# Function 2: Login the created user
def login(email: str, password: str) -> dict:
    for user_id, user in users.items():
        if user["email"] == email and user["password"] == password:
            return {"status": "success", "message": "Login successful", "user_id": user_id}
    return {"status": "error", "message": "Invalid email or password"}

In [18]:
# Function 3: Removing a created user
def remove_user(user_id: int) -> dict:
    if user_id in users:
        del users[user_id]
        return {"status": "success", "message": "User removed successfully"}
    return {"status": "error", "message": "User not found"}

In [19]:
# Bonus Function 1: Listing the users (without passwords)
def list_users() -> list:
    return [{"id": uid, "email": u["email"], "name": u["name"]} for uid, u in users.items()]


In [20]:
# Bonus Function 2: Updating the passwords for the created users
def update_password(user_id: int, old_password: str, new_password: str) -> dict:
    if user_id not in users:
        return {"status": "error", "message": "User not found"}
    
    user = users[user_id]
    
    if user["password"] != old_password:
        return {"status": "error", "message": "Old password does not match"}
    
    if not is_strong_password(new_password):
        return {"status": "error", "message": "New password must be at least 8 characters long and contain at least one digit"}
    
    user["password"] = new_password
    return {"status": "success", "message": "Password updated successfully"}


In [22]:
# Example Usage:
# Registering more users
print(register("nuriamghoi@gmail.com", "Nuria Mghoi", "pass1234"))
print(register("nurianmghoi@gmail.com", "Nuria Mghoi Hatibu", "abc12345"))

{'status': 'error', 'message': 'User email already taken'}
{'status': 'error', 'message': 'User email already taken'}


In [23]:
# Login
print(login("nuriamghoi@gmail.com", "pass1234"))
print(login("nurianmghoi@gmail.com", "wrongpass"))

{'status': 'success', 'message': 'Login successful', 'user_id': 1}
{'status': 'error', 'message': 'Invalid email or password'}


In [24]:
# List users
print(list_users())

[{'id': 1, 'email': 'nuriamghoi@gmail.com', 'name': 'Nuria Mghoi'}, {'id': 2, 'email': 'nurianmghoi@gmail.com', 'name': 'Nuria Mghoi Hatibu'}]


In [25]:
# Update password
print(update_password(1, "pass1234", "newpass567"))

{'status': 'success', 'message': 'Password updated successfully'}


In [26]:
# Remove user
print(remove_user(2))
print(list_users())

{'status': 'success', 'message': 'User removed successfully'}
[{'id': 1, 'email': 'nuriamghoi@gmail.com', 'name': 'Nuria Mghoi'}]
